cancerDocs

Development in Accordance with HIPAA Security Rules Within a Medical Project

Description

Year

2016

Industry

Medicine

Duration

18 months

Region

USA

Status

Profitable, gains functionality

Technologies employed

PHPYii2 FrameworkMySQLHTML5SASSjQueryAjaxBootstrapDockerWordPress

Service

Cancerdocs is an HIPAA compliant platform that provides to its users private online-based medical consultations on the cancer-related topics to its users. The platform serves as a bridge between authorized healthcare professionals, and patients that are in need for a medical consultation. As a service, which deals with electronic private medical information, CancerDocs has to provide its users the confidentiality of all input data. In other words, it should comply with HIPAA Security Rules. Thus the HIPAA compliance means that the system corresponds to a set of established security standards that are protecting sensitive patients’ information.

Challenge

Medicine is a highly regulated industry in terms of streamlining informational security compliance for any resourcing, including web applications. Being a health care provider that deals with protected health information (PHI), CancerDocs has to ensure that the required technical, networking and security measures are followed. The main challenge for our team within this project consisted of developing a software in correspondence with HIPAA Security Rules, which tell what has to be covered, what information has to be protected, and what safeguards must be in place to ensure appropriate protection of electronically protected health information.

We focused on the task to ensure all requirements were fulfilled. Besides that, the system has to be user-friendly and convenient for communications between doctors and patients.

Medicine is a highly regulated industry in terms of streamlining informational security.

Solution

Before we started working on the project, we’ve made an in-depth study of the HIPAA Rules, which consist of a few milestones, such as access control, audit controls, integrity, person or entity authentication, environmental and transmission security. While using the service, all patients’ data are created, received, used, proceeded, maintained and saved by a covered entity. All this process was technically covered and implemented to ensure confidentiality, integrity, and security by means of:

Abtible Container Platform, which is designed to deploy docker container into secure, isolated, HIPAA-ready environment. Each PHI-ready stack runs in its own AWS Virtual Private Cloud. Databases and internal services run in a private subnet, inaccessible from the Internet. This tool helps to cover integrity controls and ensure that all measures put in place for confirming that ePHI have not been altered or destroyed. The data ishosted in the way to be protected against unauthorized public access of ePHI. This also concerns all methods of transmitting data.

Docker tool, which allows building an environment on a remote server and helps to develop easier, deploys and runs applications by using containers. Developers do not have an access to the databases. An access control allows only the authorized users to access electronic protected health data.

As an outcome, we have received a ConcerDocs system, with following key features:

Private consultations;

Real-time chats with doctors and nurses;

Payment system integration with Authorize.Net and PayPal;

Fully automated deployment process;

Environment based on Docker containers;

Database encryption;

Full HIPAA compliance.

Results

As the result we have received a HIPAA complient environment for providing needed security for a health-care provider's service.

our clients say

Boruch A.

Serial entrepreneur in logistics and transportation industry, USA

I do business with Artelogic team since 2009. We have developed multiple enterprise systems for various verticals. Some of those we sold for over million dollars. The workflow with them is much more stable and there are processes in place in order to ensure that everyone is doing what they’re supposed to do. Everything is being tr...

I do business with Artelogic team since 2009. We have developed multiple enterprise systems for various verticals. Some of those we sold for over milli...

I do business with Artelogic team since 2009. We have developed multiple enterprise systems for various verticals. Some of those we sold for over million dollars. The workflow with them is much more stable and there are processes in place in order to ensure that everyone is doing what they’re supposed to do. Everything is being tracked.

Craig E.

CEO, Legal documents and rental management solutions, USA

I have been working with the team at Artelogic for over 5 years now and can only say that they are the most professional, capable, reliable and friendly providers I have ever worked with, and I have worked with a lot. If Artelogic’s team doesn’t know how to do something, they’ll find out and come back wi...

I have been working with the team at Artelogic for over 5 years now and can only say that they are the most professional, capable, relia...

I have been working with the team at Artelogic for over 5 years now and can only say that they are the most professional, capable, reliable and friendly providers I have ever worked with, and I have worked with a lot. If Artelogic’s team doesn’t know how to do something, they’ll find out and come back with a functional solution.

Read more

Mike T.

Entrepreneur in Mental Health Sector, UK

When I was trying to do something that was perhaps not the best solution, rather than just implement it anyway, they Artelogic would say, '...We think this might work better.'

When I was trying to do something that was perhaps not the best solution, rather than just implement it anyway, they Artelogic would say, '...We think ...

When I was trying to do something that was perhaps not the best solution, rather than just implement it anyway, they Artelogic would say, '...We think this might work better.'

Read more

Kenn P.

CEO, Software Consulting Firm, USA

The main thing for working with me is I’m pretty intense on the communication side of things. They had a flexibility and willingness to adapt their processes to match my requirements both on communication and the development processes. I never had a problem with any of their code from a code quality perspective. They clearly do a ...

The main thing for working with me is I’m pretty intense on the communication side of things. They had a flexibility and willingness to adapt the...

The main thing for working with me is I’m pretty intense on the communication side of things. They had a flexibility and willingness to adapt their processes to match my requirements both on communication and the development processes. I never had a problem with any of their code from a code quality perspective. They clearly do a good job internally with code quality assurance as well. We had very minimal issues during user acceptance testing. We never had a quality issue with them. Most importantly they took personal ownership of any problems which arose, including resolution of issues off hours or over weekends in order to mediate any issues that did happen.

Read more

Pei Shan W.

Business Owner in Beauty Industry and Investment Professional, Singapore

Artelogic has been brilliant in the service delivery. I truly enjoyed the working experience. Many times, they were able to fix the issues with utmost professionalism and reliable speed. The communication on the specific work scope was great as they are able to value add by offering practical solutions or prompt to think about areas whi...

Artelogic has been brilliant in the service delivery. I truly enjoyed the working experience. Many times, they were able to fix the issues with utmost ...

Artelogic has been brilliant in the service delivery. I truly enjoyed the working experience. Many times, they were able to fix the issues with utmost professionalism and reliable speed. The communication on the specific work scope was great as they are able to value add by offering practical solutions or prompt to think about areas which are of blind sight.

Read more

Antony S.

Director, Design Studio, Singapore

Artelogic are getting involved and seeing the project as something that's important to them and looking at new ways to solve problems and put us forward.

Artelogic are getting involved and seeing the project as something that's important to them and looking at new ways to solve problems and put us forwar...

Artelogic are getting involved and seeing the project as something that's important to them and looking at new ways to solve problems and put us forward.

Read more

send US a request!

got an idea? let’s launch it.

My nameMY NAME - REQUIRED

My email addressMY EMAIL - REQUIRED AND MUST BE VALID

My phone numberMY PHONE - REQUIRED AND MUST BE VALID

Project descriptionDescription - REQUIRED

By submitting the request, I agree and consent to the Privacy Policy, its terms of processing of my personal data.

Artelogic is updating its Privacy Policy on May 25, 2018. See the updated Privacy Policy. We use cookies to improve your experience with our site, including analytics and personalisation. By continuing to use the service, you agree to our use of cookies as described here.